e Freeradius server up and running on CentOS 4.5, but can't get
> it to validate against the IAS server successfully.
There is this:
http://wiki.freeradius.org/FreeRADIUS_Active_Directory_Integration_HOWTO
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
Li
l work since other protocols do not send the
password in cleartext in the request. This is why it is recommended
that the cleartext password be stored in the DB since then all protocols
will work.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/sub
Krzysztof Olędzki wrote:
> I'm not sure it this is a good idea. What if you need to change for
> example a shared secret?
Poke it with radclient from a host that is not in the client table?
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List inf
e :=
> op or may
> it be assigned += , =* , != etc... some other Ops.
The answer was posted 2 hours before your email in another thread:
http://wiki.freeradius.org/Operators
or
man users
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subs
Jeff wrote:
> AcctOutputOctets = '%{Acct-Output-Octets}' \
Need comma on live above. This is a MySQL issue, not a FR issue.
Please read the MySQL docs if you don't understand how to create a valid
query.
--
Dennis Skinner
Systems Administrator
Blue
scendDataRate = '24000' USRConnectSpeed =
> '' WHERE AcctSess' at line 1
You need a comma between data items:
'AscendDataRate = '24000', USRConnectSpeed ='' WHERE AcctSess'
^^^
--
Dennis Skinner
Systems Administrator
B
ther problems you might have, but you probably should have
> 'local' not 'lcal' in that script path for the Stop.
And DEFAULT instead of DEFULT.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
are for setting
things. You may also need to play with the "==". I'd have to refer to
the docs myself on that point this early in the morning...
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
> versions. You can use User-Password, but you should upgrade to a newer
> version.
Probably should also get rid of:
DEFAULTAuth-Type = System
Fall-Through = 1
Futher up in the users file. It doesn't look like you are trying to use
the /etc/passwd file, which I think is what S
;pap" returns noop for request 0
> modcall: leaving group authorize (returns ok) for request 0
> !!! rad_check_password: Found Auth-Type System !!!
> auth: type "System"
Read the *whole* debug output.
Comment out line 153 of the users file. Don't set Auth-Type.
reread the clients.conf file for some
reason. Since I think 1.1.6 still has issues with HUP, that means a
restart.
In short, you can, but it will not see any changes in dynamic IP's
unless you restart radiusd.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
Lis
s one of them. This can
then be remedied by weekly or nightly restarts. Restarts are really
quick and you should have a secondary sitting there waiting if it isn't
for some reason. Just don't restart both at the same time.
If that is not what you want, then please restate your questi
CS ppl to look at and I know it is working
correctly even if there is no traffic because I can see the Nagios check
entries.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
ep -c Failed radius.log
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
ock the entire table during inserts.
InnoDB does row locking. With InnoDB, you can also pass
--single-transaction to mysqldump and it shouldn't interrupt normal
operations during nightly dumps for backup purposes.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.blue
n the tarball.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
don't want to know that you a running a script, I want to
know what the script is doing and why you think it should be putting
things in radreply.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
should have
your test.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
outside of yum. Or yell at
Fedora until they update their repository.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
on those
IP's who wants to talk to you NAS and can figure out the secret to
potentially do naughty things.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
LDAP, I think you will need LDAP-Group instead of SQL-Group in the
huntgroups file. I'm not sure what it will look like in the LDAP
schema, but I am pretty sure others are doing this.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe
w.freeradius.org/
http://wiki.freeradius.org/Main_Page
http://deployingradius.com/
especially:
http://deployingradius.com/documents/protocols/compatibility.html
Then grab the tarball and read the files in the doc dir, the man pages,
and the comments in the config files.
If you still have questions, g
nds...
http://deployingradius.com/documents/protocols/compatibility.html
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Never say:
>>>>>> it "just doesn't work."
show us. Run radiusd -X and show us what is happening when you try and
tell us what you think should be happening.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List inf
Trio wrote:
> :)
> Please read my 1st email,there is a words
> "I want only 1 session for every user"
It is not a boolean option. 0 means you want 0 sessions for every user
(i.e. they cannot login). 1 means 1 session, 2 means 2 sessions, etc...
--
Dennis Skinner
Sy
erenced in the *authorize* section
at the bottom of the conf file.
Oh, and obviously you'll want to remove (or at least change) that entry
in the users file.
Run the server in debug mode (radiusd -X) and test.
I've never tried to use /etc/shadow myself, but the comments in the
conf
th-Type unless you really know what you are doing.
Also, I think you want := instead of ==. There is no Crypt-Password
attribute in the request, so you can't compare them. Use := to set
Crypt-Password and then let FR do its magic.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
this sounds network related.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Norman Zhang wrote:
> I'm learning how to use freeradius. Does anyone have a working conf that
> works for cisco devices?
Did you try the default one?
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscrib
ral months of data. You may not see
this as often as I do b/c I reload my pools fairly often, but making
that db column unique is absolute and those NAS's will be reloaded at
some point.
Just FYI.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/sub
ystem, I found a significant slowdown on
inserts when the table got above about 5 million records.
If you are still getting a lot of duplicates, then you may want to work
with the ppl who own the NAS's to adjust the timeouts. They may have
then set too low for some reason.
--
Dennis Skinn
first one. Notice the User-Name is part of the
mix, hence Alan's question about how they could be the same.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
hem.
LDAP goes in the *authorization* section.
CHAP goes in the *authentication* section.
Read that carefully. Also read the debug output very carefully.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.
Marwan Sultan wrote:
> Do you have any hint or know anything about disappearing users in mysql
> database?
Turn on mysql query logging. Wait for user to disappear. Check log.
See what generated that query.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefr
ript can u send me i
> am in problem :(
Have a look at bash scripting and expect. It is fairly simple and you
may be able to get away with it.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
ing exactly what you told it to do. Now go make the
rest of your system behave or fudge it as I have described.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
u have locate on your system. Just
be aware that it may not always be accurate.
"Finding" a file from the root of the filesystem on a "clean" server (ie
fresh install w/o unnecessary apps or a GUI) should be pretty quick.
--
Dennis Skinner
Systems Administrator
BlueFr
on radius in debugging mode and send the
output to a file that you can review for anomalies. If it is happening
often enough and you don't want to run the primary radius in debug mode,
you could do it on the secondary and force a failover for a short time
and try to catch it.
--
Denni
the debug log, but if the group is in sql, then the huntgroup file
should look something like this:
testbad NAS-IP-ADDRESS == some.ip
SQL-Group = suspend
Hopefully that helps....
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.co
(non-debugging) mode, the
> FreeRadius logs are basically useless.
They can be useful to CS staff. All you need is a perl script that uses
the File::Tail module. It basically tails the log file and grabs out
some info and does mysql inserts. I modified ours from a popb4smtp
script I found on
Jóhann B. Guðmundsson wrote:
> Dennis Skinner
>
>> Or list them in /etc/hosts
>
> Wouldnt recommend it...
If you are obsessed with using names instead of IP's in the clients.conf
file and you don't want to depend on DNS, this is your other option.
It may be bene
Alan DeKok wrote:
> Jóhann B. Guðmundsson wrote:
>> I had the unfortunate experience for my radius daemon to die when it
>> couldn't
>> resolve one client in clients.conf
>
> Yes. The answer is to not use DNS names for clients. Use IP addresses.
Or lis
Matt Ashfield wrote:
> In order to get EAP-PEAP/MS-ChapV2 to work with FreeRadius, what are my
> options for storing the password in LDAP? Does it have to be clear-text?
I think this is what you want:
http://deployingradius.com/documents/protocols/compatibility.html
--
Dennis Skinner
S
ay not be what you expect it to be and if you are not careful
with DNS/rDNS, then it will look confusing to MySQL and you.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
makes it very easy to
watch and see what processes are taking too long and holding up the rest.
I'm not sure if there is a similar app out there for postgresql, but
it'd be worth a look.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
other words
>> Check the NAS docs for disconnecting a user.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
cript or any option to
> integrate with webpage of dialupadmin ???
You need to change your thinking. The user is not connected to RADIUS.
Never was. That isn't what RADIUS does. The user is connected to your
NAS. Check the NAS docs for disconnecting a user.
--
Dennis Skinner
Systems Ad
t need to reset the root password, you never set
one in the first place! Now, go read.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
s it needs. Then REVOKE the rights I just had you GRANT above.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
in debug mode (-X). If you want a
record, do something like this:
radiusd -X >> debug.log
tail -f debug.log
Otherwise, don't run it in debug mode.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
on NFS volumes can cause
problems if not done correctly.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
rt them into the db (there is a module to help with this).
Radius will happily skip queries that take too long or if there are not
enough mysql connections available on the accounting side.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsu
be in clear text because it cannot
decrypt the password that it was sent.
See this for further details:
http://deployingradius.com/documents/protocols/compatibility.html
In short, the answer is: no, secure your database.
--
Dennis Skinner
Systems Administrator
BlueFrog Interne
t answer is don't give high-level access to this box to people
you don't trust.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
anything.
> rlm_radumtp: WARNING: checkrad will probably not work!
> modcall[accounting]: module "radutmp" returns noop for request 9
You did read the entire output, right? It looks like it gave you your
answer.
--
Dennis Skinner
Systems Administrator
BlueFrog Inte
Ian Truelsen wrote:
> BTW, I just noticed that while there is a section in authorize for sql,
> there is not one in authenticate. Is that correct?
>
Yes, radius does authentication. MySQL stores the password for radius.
-Dennis
-
List info/subscribe/unsubscribe? See http://www.freeradius.or
word from the
Platy table. Something like:
SELECT id,username,"Password",password,"==" from customers where
username="blah"
So you are "hardcoding" the attribute and operator into the query. But
as I said, you really should use a separate set of tables.
-
urning fields get mapped into RADIUS attributes? (what do
> you do when the db calls the field "uname" and RADIUS calls it
> "user-name")
You haven't looked at sql.conf, have you?
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
s. Esp if
they are rebooted. Looking for a Timestamp Start within X hours of
NOW() may help you out there. Otherwise you may update really old rows
and have sessions that look like they lasted 30 days or something. We
ran into this problem.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
| 2 | [EMAIL PROTECTED] | ISP2 |
+---++---+
It should just work.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
n when running it in regular mode? Give
us the commandline you are using to start it in both modes.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
mething else?
Read closer
"Radiuz lets you determine exactly how open or closed you want to your
network to be. If you choose to make your network accessible to other
Radiuz members, the system allows you to monitor usage so you can see
who is using your network."
--
Denni
can see what is happening when you try to auth.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
ng is done on
a different UDP port than Auth requests.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
t;User-Password = "adsl"
>NAS-IP-Address = 255.255.255.255
>NAS-Port = 0
> rad_recv: Access-Accept packet from host 127.0.0.1:1812, id=206, length=20
Because you haven't sent one. That is an access request, not an
accounting request.
--
Denn
Auth-Type. If you
didn't do it in LDAP, check around line 152 in the users file.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
les is running, ask it:
iptables -nL
man iptables
On CentOS/RedHat, you can stop iptables by doing this:
/etc/init.d/iptables stop
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
hen you *don't* want the "tar
file", you need to go to your distro's repository.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
download a gz
file (as opposed to bz2) the command is slightly different:
tar xvzf file.tar.gz
"man tar" is your friend.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
The rest should be obvious
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
hat people can help you with.
2. There was probably an error in make. Look again. If you do
something like "make > make_output.txt" that will save the normal STDOUT
output to a file (to review later if you like) and the STDERR will still
go to your screen and will be easier to see.
--
On a side note... if you don't want to use CVS to track config changes
as Alan suggests, you should at least make a backup copy of the original
configs that shipped with the tarball (with all their handy inline
documentation) to refer to when you get stuck.
--
Dennis Skinner
Sy
but instead are authenticated by the RADIUS server itself.
#
# You don't need a secret if BOTH 'authhost' and 'accthost' are
# set to LOCAL.
#
#realm bla.com {
# type= radius
# authhost= LOCAL
# accthost= LOCAL
#}
"LOCAL&
Alan DeKok wrote:
> "Guilherme Franco" <[EMAIL PROTECTED]> wrote:
>> Survey Not Found
>
> Whoops... the "make active" link didn't work. I poked it again.
Still "Survey Not Found" as of right now.
--
Dennis Skinner
Systems Administrato
chever is the list email address. I do this all the time in
Gmail. It works better than filtering by subject when ppl forward from
one list that has subject tags to another.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe?
indexes on the tables. See the MySQL
docs for EXPLAIN and performace.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
ery 10 minutes.
Users were told to wait 10 mins before trying to login after an account
change (reactivation, password update, etc).
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
e and writes (accounting) are done on the master. This should
help speed up things.
I also recommend using InnoDB engine instead of the default MyISAM.
MyISAM does table locking instead of row locking. Also database dumps
for backups can be done without locking the table with InnoDB.
--
Dennis
ng the same exact
question, you will be ignored.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Please don't top post. It makes it hard to respond and have it make
sense
Duane Cox wrote:
> Dennis Skinner wrote:
>> My own testing found that the usergroup table would not be used unless
>> the SQL-Group attribute is found. I set it in the huntgroups file
>> myse
ary server is the only one to accept accounting requests,
if that server goes down, you will have missing data. The client won't
store them and wait for the primary to come back.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscr
equest to FR. I'm
sure Postgres has something similar.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
I did find the part that you quoted misleading though...
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
ress in the huntgroups file
because I have upstream RADIUS providers to deal with
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
econd entry. The usergroup table takes care of that.
> -- usergroup --
>
> idUserNameGroupName
> 1 testfirstgroup
When someone tries to login, the preprocess section will run the
huntgroups file and if the NAS-IP-Address matches, it will set the
SQL-Grou
gt;>
>> Alan DeKok.
>> --
>> http://deployingradius.com - The web site of the book
>> http://deployingradius.com/blog/ - The blog
>> - List info/subscribe/unsubscribe? See
>> http://www.freeradius.org/list/users.html
>>
> - List info/su
y to get help:
http://www.freeradius.org/list/users.html
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
ld be plenty in /etc/init.d to use
for examples.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Scott Miller wrote:
> /usr/local/sbin/radiusd -X
FreeRADIUS doesn't write to the log file in debug mode (or at least it
never used to). Start it without the -X then send it some login
requests and check the log.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.blue
need to flush
the privs afterwards. See the MySQL docs. They are very good.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
g the
check items? The latter would really save some overhead if only a few
customers were time limited.
Thanks!
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
they stay there.
If you do "show processlist" or run mytop, you will see a bunch of idle
processes until radiusd starts doing something.
As to your first issue, are you sure it isn't network or firewall related?
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.b
s
> per second, far too much to simply look at as it comes in.
Yep, hence:
>> You should be doing this on a test machine anyway. Debugging on a
>> production system is tough.
:)
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subs
t;
> No virus found in this incoming message.
> Checked by AVG Free Edition.
> Version: 7.1.392 / Virus Database: 268.6.1/343 - Release Date: 18/05/2006
> - List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
>
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
It's a known bug, and it'll be fixed in 1.1.2.
> http://bugs.freeradius.org/show_bug.cgi?id=354
If it is the same problem I had, the workaround/fix is to edit the
Makefile and add a line to create the libs directory. Just copy one of
the other lines. Its near the top of the
ge tables take a long time to
change, so you will be unable to write to them during that time. Reads
will also be quite slow (if it responds at all). I took our radius
servers offline during the change at like 4am.
Archiving old accounting data will help too.
--
Dennis Skinner
Systems Adminis
still something running on that port or something else caused it to
error out.
*After* you send a request and it gets rejected, Control-C will get your
prompt back and terminate the radiusd -X.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Zoltan Ori wrote:
> On Thursday 11 May 2006 16:30, Dennis Skinner wrote:
>> Are you responding to me?
>>
> Yes, he is.
I was subtly suggesting he should include relevant text in his responses
like I am doing. If someone searches the archives later, they have no
context for
on how to rewrite a
username using regex (exactly what you are trying to do) with just the
hints file. It is a bit more elegant and will likely rewrite the
username sooner in the processing, allowing you to use the new username
in huntgroups, etc.
--
Dennis Skinner
Systems Administrator
BlueFr
.
Third, you can still use the old password format.
Fourth, please avoid sending html to the list.
--
Dennis Skinner
Systems Administrator
BlueFrog Internet
http://www.bluefrog.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
1 - 100 of 147 matches
Mail list logo